According to fresh warnings by security vendor Intego, another Java vulnerability is attacking Macs that haven't been patched with Apple's Java for OS X Lion 2012-002 and Java for Mac OS X 10.6 Update 7, released earlier this month. Meanwhile, the security analysts warned that many copies of older versions of MS Word haven't been patched and are being infected.

In its ongoing battle against the widespread Flashback malware attack, Apple has released a standalone removal tool. The utility is available only for users of the most recent version of OS X who have chosen not to install Java.

As OS vendors get better about patching their own flaws, malware authors are increasingly turning to third-party code to get their dirty work done, and Java is high on the list. It's easy to say, "Just don't use Java," but what if a program you use requires it? I've got a list of problem apps and solutions.

Most modern Macs have Java installed, so they could be vulnerable to the Flashback. While Apple posted a security fix for Mac OS X Lion and Mac OS X Snow Leopard, there are many millions of Macs running older software. Still there's an easy way to prevent a Java drive-by attack, besides pulling the plug.